Hybrid Access Management for transition to the cloud

Evolution from legacy web access management to modern standards

Mike Santopietro

Mike Santopietro

Director, Cyber Security Solutions Architect, KPMG Cyber Security Services, KPMG US

+1 860-297-5422

In today’s digital world, the move from on premise to the cloud is one of the highest priorities for organizations. Over the past two plus decades, application security has evolved from proprietary stand-alone technologies to industry standard shared service models which are much more adaptable and secure. Additionally, the access patterns have changed over this period from client server models to browser-based applications, and now mobile applications with complex API security requirements. These modern access patterns and application architectures have requirements that could never have been satisfied by the legacy web access management systems of a decade ago.

Even so, many of these legacy applications and security systems are still in operation. Companies still rely on older versions of applications because the applications are critical to business, and the path to migrate away is a lengthy expensive process. The enterprises are left with several choices: either let the applications operate independently, not integrated with the broader security infrastructure, undertake a long costly upgrade or migration for the legacy application, or find a way to integrate with the modern infrastructure and try to keep it in balance.

More and more organizations have implemented a hybrid security model for legacy application support that enables end users to keep doing their job, while mitigating the security risks in the modern enterprise. This is ultimately an interim step while a more strategic plan is put in place for the applications; however, mitigating security risks is of the utmost priority.

Companies must find a sustainable and secure solution to integrate those legacy applications with modern cloud models. Explore our white paper that covers the evolution from legacy web access management to modern standards.